[aur-dev] [PATCH] Convert the language selection bar in a select form

Manuel Tortosa manutortosa at gmail.com
Wed Jun 29 18:15:31 EDT 2011

On Wednesday 29 June 2011 23:19:11 Lukas Fleischer wrote:
> Again, printing "$_REQUEST['ID']" without escaping introduces a XSS
> vulnerability. Do we actually need this field at all?

Currently in AUR if you try to change the language in a package info page, you 
get directed to the list of packages.

More information about the aur-dev mailing list